uwe.admin/oatpp-authkit
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions
oatpp-authkit/include/oatpp-authkit/auth
History
Uwe Schuster 46971acf99 AuthInterceptor: strip query string before policy check 
Request-target from getStartingLine().path includes the query string
(e.g. "/set-password?token=abc"), causing exact-match public-path
checks like `path == "/set-password"` in IAuthPolicy::isPublicPath
to fail and the request to be rejected with 401.

Strip the query string once at the top of intercept() so policies
and access logs see clean paths.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-25 11:41:48 +02:00
..
AuthInterceptor.hpp AuthInterceptor: strip query string before policy check 2026-04-25 11:41:48 +02:00
AuthPrincipal.hpp v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port 2026-04-21 21:48:43 +02:00
IAuthBackend.hpp v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port 2026-04-21 21:48:43 +02:00
IAuthPolicy.hpp v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port 2026-04-21 21:48:43 +02:00
IRuntimeConfig.hpp v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port 2026-04-21 21:48:43 +02:00
RequireRole.hpp v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port 2026-04-21 21:48:43 +02:00